Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258771 | 4.3 | 警告 | VMware | - | VMware Server の WebAccess におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1193 | 2010-04-21 17:54 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 258772 | 7.5 | 危険 | VMware | - | 複数の VMware 製品の WebAccess におけるリクエストの発信元を偽装される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0686 | 2010-04-21 17:53 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 258773 | 4.3 | 警告 | VMware | - | 複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1137 | 2010-04-21 17:51 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 258774 | 4.6 | 警告 | GNU Project サイバートラスト株式会社 レッドハット |
- | GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4029 | 2010-04-21 17:51 | 2009-12-20 | Show | GitHub Exploit DB Packet Storm |
| 258775 | 5 | 警告 | Linux レッドハット |
- | Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0741 | 2010-04-21 17:48 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258776 | 6.9 | 警告 | mielke レッドハット |
- | brltty の libbrlttybba.so における権限昇格の脆弱性 |
CWE-264 CWE-Other |
CVE-2008-3279 | 2010-04-21 17:47 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258777 | 4.3 | 警告 | Mozilla Foundation | - | Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0181 | 2010-04-20 16:42 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258778 | 5.8 | 警告 | サイボウズ | - | 複数のサイボウズ製品におけるアクセス制限に関する脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2029 | 2010-04-20 12:01 | 2010-04-20 | Show | GitHub Exploit DB Packet Storm |
| 258779 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0805 | 2010-04-19 19:20 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258780 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-0491 | 2010-04-19 19:19 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 12, 2026, 4:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249631 | 6.5 |
MEDIUM
Network |
puppet | cisco_ios_module | Previous releases of the Puppet cisco_ios module did not validate a host's identity before starting a SSH connection. As of the 0.4.0 release of cisco_ios, host key checking is enabled by default. |
CWE-20
Improper Input Validation |
CVE-2018-11750 | 2024-11-21 12:43 | 2018-10-3 | Show | GitHub Exploit DB Packet Storm |
| 249632 | 7.8 |
HIGH
Local |
puppet | device_manager | Previous releases of the Puppet device_manager module creates configuration files containing credentials that are world readable. This issue has been resolved as of device_manager 2.7.0. |
CWE-522
Insufficiently Protected Credentials |
CVE-2018-11748 | 2024-11-21 12:43 | 2018-10-3 | Show | GitHub Exploit DB Packet Storm |
| 249633 | 5.9 |
MEDIUM
Network |
apache canonical redhat oracle netapp |
http_server ubuntu_linux enterprise_linux retail_xstore_point_of_service hospitality_guest_access enterprise_manager_ops_center secure_global_desktop instantis_enterprisetrack
In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This…
|
NVD-CWE-noinfo
|
CVE-2018-11763
|
2024-11-21 12:43 |
2018-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 249634 | 8.8 |
HIGH
Network |
samsung | samsung_members | This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Samsung Members Fixed in version 2.4.25. An attacker must first obtain the ability to execute low-priv… |
NVD-CWE-noinfo
|
CVE-2018-11614 | 2024-11-21 12:43 | 2018-09-25 | Show | GitHub Exploit DB Packet Storm |
| 249635 | 4.0 |
MEDIUM
Network |
wallabag | wallabag | The Wallabag application 2.2.3 to 2.3.2 is affected by one cross-site scripting (XSS) vulnerability that is stored within the configuration page. This vulnerability enables the execution of a JavaScr… |
CWE-79
Cross-site Scripting |
CVE-2018-11352 | 2024-11-21 12:43 | 2018-09-22 | Show | GitHub Exploit DB Packet Storm |
| 249636 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6574au_firmware qca6584_firmware sd210_firmware sd212_firmware
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA6574AU, QCA6584, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 45…
|
CWE-787 |
CWE-190 Out-of-bounds Write Integer Overflow or Wraparound
CVE-2018-11292
|
2024-11-21 12:43 |
2018-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 249637 | 7.5 |
HIGH
Network |
qualcomm |
ipq8074_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca4531_firmware qca6174a_firmware qca6564_firmware qca6574_firmware… |
In Snapdragon (Automobile, Mobile, Wear) in version IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9378, QCA93… |
CWE-338
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) |
CVE-2018-11291 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 249638 | 7.5 |
HIGH
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6574au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd4… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, QCA6584, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52,… |
CWE-338
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) |
CVE-2018-11290 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 249639 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd427_firmware sd430_… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, S… |
CWE-20
Improper Input Validation |
CVE-2018-11287 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 249640 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd427_firmware sd430_… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, … |
CWE-125
Out-of-bounds Read |
CVE-2018-11285 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |